Lucene search
HistoryJul 14, 2015 - 4:59 p.m.
CVE-2015-5147
cve-2015-5147
buffer overflow
html renderer
redcarpet
denial of service
arbitrary code execution
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.1%
Stack-based buffer overflow in the header_anchor function in the HTML renderer in Redcarpet before 3.3.2 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Affected configurations
Node
redcarpet_projectredcarpetRange≤3.3.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| redcarpet_project:redcarpet | redcarpet project redcarpet | le | 3.3.1 |
Related
cvelist
cvelist
CVE-2015-5147
2015-07-14 16:00:00
debiancve
debiancve
CVE-2015-5147
2015-07-14 16:59:04
osv
osv
redcarpet Buffer Overflow vulnerability
2018-08-15 20:04:30
nvd
nvd
CVE-2015-5147
2015-07-14 16:59:04
ubuntucve
ubuntucve
CVE-2015-5147
2015-07-14 00:00:00
github
github
redcarpet Buffer Overflow vulnerability
2018-08-15 20:04:30
prion
prion
Stack overflow
2015-07-14 16:59:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.1%
Related for CVE-2015-5147